Hi. OpenPGP RFC doesn't tell anything about usage of X.509 certificates within standard.
They can be used in PGP desktop, so we added some code to support saving/loading of such keys and signatures, however this suport is limited.
And, using x.509 certificate will not provide any additional security - the same RSA algorithm will be used.

So I don't see any reason to use X.509 certificates with OpenPGP. If you actually need X.509, you should switch to PKI/CMS.

You can use ElMessageEncryptor, which will produce a standard-compliant PKCS#7 message.
PKCS#7 document (RFC 2315, "PKCS #7: Cryptographic Message Syntax, Version 1.5") is an older version of CMS document (RFC 5652, "Cryptographic Message Syntax (CMS)"), and they both describe almost the same syntax.

Thank you, that is good to hear! I'm not sure if we will really do this type of encryption in the end because its more of a political decision from this point on. It's a good thing that it follows a standard though.

We use cookies to help provide you with the best possible online experience. By using this site, you agree that we may store and access cookies on your device. You can find out more about and set your own preferences here.